$ rpki-client -vvf repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa File: 3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa (raw, json) Hash identifier: 9A66PZraqcmsbI8344W/oWr1IDY31DvKsi1wtNyTQV4= Subject key identifier: 56:56:0B:FC:D2:EA:CA:5E:F0:F1:00:3C:FE:A8:0D:15:0B:65:FF:B4 Certificate issuer: /CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Certificate serial: 3736C960D434E915E3B0F504BFB37BAECBFF0164 Authority key identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa Signing time: Wed 15 Apr 2026 05:00:03 +0000 ROA not before: Wed 15 Apr 2026 04:55:03 +0000 ROA not after: Wed 14 Apr 2027 05:00:03 +0000 asID: 152437 IP address blocks: 157.20.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 16:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:36:c9:60:d4:34:e9:15:e3:b0:f5:04:bf:b3:7b:ae:cb:ff:01:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Validity Not Before: Apr 15 04:55:03 2026 GMT Not After : Apr 14 05:00:03 2027 GMT Subject: CN=56560BFCD2EACA5EF0F1003CFEA80D150B65FFB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:46:3e:68:d0:3e:13:a0:59:81:5c:ae:71:64: 99:c4:30:a6:c1:00:3f:a7:94:33:4b:96:2f:91:0a: cb:2d:64:f9:4c:74:d4:b3:f2:90:4e:46:97:a2:79: 38:96:66:1a:10:57:c2:de:fa:f1:05:8f:45:56:bc: 92:d0:66:1a:9d:6a:eb:8d:93:fe:52:1e:36:07:bf: 98:89:92:1f:2d:de:6e:ae:9f:66:81:21:21:18:0a: b6:30:64:a4:03:41:fa:76:e9:c3:8e:a6:df:7a:d9: 38:e8:46:9e:0d:77:90:c1:a4:cc:f4:31:a3:c0:76: 8b:0c:ae:93:4f:1f:6c:25:08:2b:5e:d7:2e:41:64: a4:b1:c8:ed:d7:0a:f5:30:de:64:9f:eb:17:96:d3: 80:4b:06:07:92:27:1f:0f:62:4e:a2:d6:41:73:9c: 16:34:5e:7f:e1:1e:42:74:75:c4:11:8b:bc:e6:97: 7b:71:aa:e8:ff:62:a2:6b:2a:b7:e7:e9:bf:e9:fd: 4c:98:f5:1d:5f:75:8a:d7:25:74:90:f6:4a:e1:b8: e6:1d:bd:9f:ec:78:27:26:04:d1:dc:98:0b:41:99: 54:18:d2:f3:30:43:6a:ee:10:32:3e:fe:1d:8f:54: 97:d7:ee:40:5c:35:b3:d8:bc:df:09:31:95:55:62: 12:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:56:0B:FC:D2:EA:CA:5E:F0:F1:00:3C:FE:A8:0D:15:0B:65:FF:B4 X509v3 Authority Key Identifier: keyid:FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.223.0/24 Signature Algorithm: sha256WithRSAEncryption 24:d8:cc:b8:8d:ad:da:5b:7c:08:d1:f0:75:02:c9:c0:af:5f: d9:ef:c6:7e:02:3a:3d:d9:7d:9f:af:28:4a:0a:dc:7d:89:24: 24:64:14:8d:e9:4b:44:57:98:56:58:ba:15:4f:43:1f:54:ba: 30:82:46:fb:c6:fe:fd:a3:a2:ee:0f:72:c3:cd:15:c8:10:42: 68:6a:7a:73:e3:4a:8b:4b:6b:a4:af:70:8b:19:d4:c5:7f:af: 4d:42:5b:94:d0:89:2c:24:04:ca:4c:8e:9b:ca:66:58:51:bd: ad:18:95:b8:88:f9:ac:e8:dd:04:35:f9:63:f4:c5:20:90:6b: 75:a8:1e:92:eb:f9:e4:e4:81:2c:4c:48:dc:14:af:1c:ee:9b: 99:25:62:51:14:84:03:d5:bd:bb:03:a8:1a:38:b2:cb:58:fe: 89:bc:c3:11:2c:ca:9b:5e:79:ed:40:29:dd:ee:ae:a0:e3:b7: c4:62:3f:bd:45:c9:44:97:61:fc:96:e2:e5:14:bc:98:67:e6: b1:24:50:7c:8f:b4:68:9b:23:e9:5e:08:a5:54:28:f1:85:bb: 9f:71:72:2c:2f:4f:f5:32:db:0c:0b:24:65:73:0e:e2:3a:6b: 33:cf:d2:5a:10:6d:b7:a5:95:fa:1e:4c:00:90:bf:76:08:cf: 0f:be:b4:9d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNzbJYNQ06RXjsPUEv7N7rsv/AWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4 MDlEMDczOTAeFw0yNjA0MTUwNDU1MDNaFw0yNzA0MTQwNTAwMDNaMDMxMTAvBgNV BAMTKDU2NTYwQkZDRDJFQUNBNUVGMEYxMDAzQ0ZFQTgwRDE1MEI2NUZGQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGRj5o0D4ToFmBXK5xZJnEMKbB AD+nlDNLli+RCsstZPlMdNSz8pBORpeieTiWZhoQV8Le+vEFj0VWvJLQZhqdauuN k/5SHjYHv5iJkh8t3m6un2aBISEYCrYwZKQDQfp26cOOpt962TjoRp4Nd5DBpMz0 MaPAdosMrpNPH2wlCCte1y5BZKSxyO3XCvUw3mSf6xeW04BLBgeSJx8PYk6i1kFz nBY0Xn/hHkJ0dcQRi7zml3txquj/YqJrKrfn6b/p/UyY9R1fdYrXJXSQ9krhuOYd vZ/seCcmBNHcmAtBmVQY0vMwQ2ruEDI+/h2PVJfX7kBcNbPYvN8JMZVVYhIbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVlYL/NLqyl7w8QA8/qgNFQtl/7QwHwYDVR0j BBgwFoAU/nnlbL6Zx3PNch33qw5cooCdBzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MWYxNWExZC01ZGFjLTRjYzktODExYS1lNDljYjRlN2JjZTEvMC9GRTc5RTU2Q0JF OTlDNzczQ0Q3MjFERjdBQjBFNUNBMjgwOUQwNzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkU3OUU1NkNCRTk5Qzc3M0NENzIxREY3QUIwRTVDQTI4MDlE MDczOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZjE1YTFkLTVkYWMtNGNjOS04 MTFhLWU0OWNiNGU3YmNlMS8wLzMxMzUzNzJlMzIzMDJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzQzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRTfMA0GCSqG SIb3DQEBCwUAA4IBAQAk2My4ja3aW3wI0fB1AsnAr1/Z78Z+Ajo92X2fryhKCtx9 iSQkZBSN6UtEV5hWWLoVT0MfVLowgkb7xv79o6LuD3LDzRXIEEJoanpz40qLS2uk r3CLGdTFf69NQluU0IksJATKTI6bymZYUb2tGJW4iPms6N0ENflj9MUgkGt1qB6S 6/nk5IEsTEjcFK8c7puZJWJRFIQD1b27A6gaOLLLWP6JvMMRLMqbXnntQCnd7q6g 47fEYj+9RclEl2H8luLlFLyYZ+axJFB8j7RomyPpXgilVCjxhbufcXIsL0/1MtsM CyRlcw7iOmszz9JaEG23pZX6HkwAkL92CM8PvrSd -----END CERTIFICATE-----Generated at Fri Apr 17 13:54:10 2026 by rpki-client